tag:blogger.com,1999:blog-13756280.post4882916304575790198..comments2015-03-02T22:46:06.360-08:00Comments on Jeremiah Grossman: Results: Web Application Security Professionals Survey (July 2008)Jeremiah Grossmanhttp://www.blogger.com/profile/05017778127841311186noreply@blogger.comBlogger7125tag:blogger.com,1999:blog-13756280.post-29432066474110929302008-08-06T10:23:00.000-07:002008-08-06T10:23:00.000-07:00@ KINGTHORIN:I think the bold just means the highe...@ KINGTHORIN:<BR/><BR/>I think the bold just means the highest count for that row. So in a forced ranking question, 2 different rows can have the same option as their most common choice.robotatenoreply@blogger.comtag:blogger.com,1999:blog-13756280.post-57846900001480144532008-08-05T00:36:00.000-07:002008-08-05T00:36:00.000-07:00haha... great comment.. this is great for hackershaha... great comment.. this is great for hackersMobisophttp://mobis.resiklo.com/noreply@blogger.comtag:blogger.com,1999:blog-13756280.post-55112473956369921972008-08-01T12:51:00.000-07:002008-08-01T12:51:00.000-07:00Seems to be a small mistake in the image for #16, ...Seems to be a small mistake in the image for #16, column 6 has two bold entries while column 5 has none.kingthorinnoreply@blogger.comtag:blogger.com,1999:blog-13756280.post-28874713133774968992008-07-27T10:49:00.000-07:002008-07-27T10:49:00.000-07:00Safe for hackers! Ha ha, love itSafe for hackers! Ha ha, love itDavi Ottenheimerhttp://davi.poetry.org/blognoreply@blogger.comtag:blogger.com,1999:blog-13756280.post-4232384297144581212008-07-26T21:07:00.000-07:002008-07-26T21:07:00.000-07:00@ christian:yes, the comments on the PCI-DSS quest...@ christian:<BR/><BR/>yes, the comments on the PCI-DSS question, especially EU and AU -- were very interesting.<BR/><BR/>i was also interested in the comment: "We (a University) don't seem to know/care about PCI-DSS. We use a third-party product for accepting payments by card."<BR/><BR/>certainly universities have to deal with audits -- GLBA if not PCI-DSS. state-funded colleges have audits performed by the state government, usually via performance audits from the office of an auditor general. i'd be curious to hear more from this particular commenter.<BR/><BR/>in the "agile vs. web 2.0" question (these probably should have been separate questions), about 4 of the people who commented thought that agile was sometihng negative towards security. the other 50 or so thought that agile was positive.Andre Girondahttp://www.blogger.com/profile/17414510788948258195noreply@blogger.comtag:blogger.com,1999:blog-13756280.post-82458827013511581172008-07-25T20:58:00.000-07:002008-07-25T20:58:00.000-07:00Interesting comments with regard to the take up of...Interesting comments with regard to the take up of PCI in Australia. Not surprising though :)Christianhttp://www.blogger.com/profile/10391255646967473669noreply@blogger.comtag:blogger.com,1999:blog-13756280.post-34852106395105116032008-07-25T13:07:00.000-07:002008-07-25T13:07:00.000-07:00I don't see my comment about HackerSafe on there, ...I don't see my comment about HackerSafe on there, why'd you remove it?Yousif Yaldahttp://www.blogger.com/profile/17130171565447829176noreply@blogger.com